Lucene search
HistoryJun 16, 2003 - 4:00 a.m.
CVE-2003-0285
ibm aix
sendmail
configuration
security
vulnerability
nvd
4.5 Medium
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.007 Low
EPSS
Percentile
79.6%
IBM AIX 5.2 and earlier distributes Sendmail with a configuration file (sendmail.cf) with the (1) promiscuous_relay, (2) accept_unresolvable_domains, and (3) accept_unqualified_senders features enabled, which allows Sendmail to be used as an open mail relay for sending spam e-mail.
Related
cert
cert
IBM AIX sendmail configured as open mail relay by default
2003-06-17 00:00:00
openvas
openvas
Sendmail Mail Relay Vulnerability
2011-11-15 00:00:00
Mail relaying
2009-03-23 00:00:00
Mail relaying (thorough test)
2005-11-03 00:00:00
nessus
nessus
MTA Open Mail Relaying Allowed (internal)
2018-10-10 00:00:00
MTA Open Mail Relaying Allowed (thorough test)
2003-09-26 00:00:00
MTA Open Mail Relaying Allowed
1999-06-22 00:00:00
4.5 Medium
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.007 Low
EPSS
Percentile
79.6%
Related for CVE-2003-0285